I told you earlier this week about the massive flaw in iPad and iPhone security, and now Apple is taking the stage to defend itself.
A quick recap on how the Masque Attack works. Once an app is installed on your iOS gadget, your phone treats any app with the same name and digital signature as if it were the same app. Normally, your phone would confirm that something called a "certificate" proved that an update to an app was created by the same developer as the app that it's replacing.
The security researchers call attacks exploiting this vulnerability a Masque Attack because all iOS gadgets are vulnerable to malware-infected apps "masking" themselves as something that they're not.
After you give the developer a free pass by saying that you trust the app, they can use the malware they've just installed to hijack your phone and spam others or steal your information. But Apple has another side to the story.